$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: AlM/3yNm2FMrlxQIQ5niRlMBd0EOosaO8y5znGqIE8Q= Subject key identifier: 4B:A8:05:E1:D0:08:BE:7E:8E:E5:F5:98:F4:1A:03:6C:F2:09:FE:C3 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 2D284697AA17B80A52520AEAF398D09B6A83D735 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:46 +0000 ROA not before: Sun 03 May 2026 02:12:46 +0000 ROA not after: Sun 02 May 2027 02:17:46 +0000 asID: 153087 IP address blocks: 2404:97c0:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:28:46:97:aa:17:b8:0a:52:52:0a:ea:f3:98:d0:9b:6a:83:d7:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:46 2026 GMT Not After : May 2 02:17:46 2027 GMT Subject: CN=4BA805E1D008BE7E8EE5F598F41A036CF209FEC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f6:b1:fe:7d:45:52:e4:23:e0:b3:0d:fe:7c: 75:52:c4:60:02:d5:57:52:a5:00:9b:9c:09:8f:ca: 3f:ac:0a:1d:34:9a:30:f9:cc:3f:95:04:6d:77:1e: a2:34:34:53:c4:63:27:2d:f8:2c:12:69:e1:5c:bf: 66:30:8a:fd:18:54:0e:43:c3:7b:8a:e3:e2:1a:2f: b9:49:98:90:d7:8d:60:2b:4d:c0:58:a3:3b:2a:cc: af:c6:c5:08:9f:6c:0d:bf:d8:58:5f:de:5c:34:2f: ca:c7:2e:65:15:08:4f:1d:f5:14:28:87:bd:8f:32: 48:51:7e:6f:16:bd:b2:20:87:76:60:db:fd:c6:95: 75:e3:68:f6:d3:fb:f2:d1:2a:58:80:46:3c:2b:de: 38:e7:02:24:1c:ed:c4:9a:87:c9:ad:c4:1d:36:5d: f0:58:d5:81:39:c9:24:a1:2d:a1:37:ba:58:62:3d: 2d:ee:41:4c:e8:fc:92:63:33:57:8e:94:04:05:de: 39:61:28:ca:3e:99:75:95:ea:df:f6:7e:a2:46:73: b8:71:aa:91:e9:b1:72:21:4c:90:3d:e3:95:13:c0: 51:67:3e:a7:ab:e5:f5:85:e0:f1:60:ba:d2:15:5f: 18:4b:fd:ec:15:34:49:be:49:3b:9b:a6:4c:3e:c8: 5d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A8:05:E1:D0:08:BE:7E:8E:E5:F5:98:F4:1A:03:6C:F2:09:FE:C3 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:8000::/36 Signature Algorithm: sha256WithRSAEncryption a3:1b:f3:88:d7:70:45:7e:e9:43:fc:6d:4c:45:06:52:97:76: d4:f7:a9:6a:7a:f5:38:1e:4d:6e:14:f8:a4:cd:bc:15:aa:06: f7:2f:b4:0b:91:03:a7:6a:b6:d9:26:c5:1a:aa:f0:e0:27:29: a5:8e:f7:55:22:9b:da:31:f5:2f:98:ff:53:87:93:4c:74:fa: 58:af:be:14:ce:3c:d2:57:2c:ad:56:38:6d:90:0a:ca:3e:c0: 0d:de:31:e0:74:d0:01:22:87:06:04:c1:76:fe:1a:ac:b9:b0: 45:39:b8:98:7f:13:ad:50:5d:58:85:2a:ad:28:4e:fb:2a:24: 98:90:12:88:c1:7b:15:86:f7:4c:82:4e:4e:0c:09:0e:0d:fe: 32:d6:c1:cd:6e:43:de:36:78:ac:aa:9d:0a:7b:dc:7b:29:ed: ba:39:2a:2d:0e:7e:8c:10:00:36:57:5c:e5:6e:6e:64:98:2b: e5:ec:4b:c5:76:38:14:6e:f5:3c:ca:af:69:b0:5d:91:02:2d: 59:07:e2:80:51:a5:60:99:9d:a3:a4:8a:57:d8:a9:42:46:fb: 52:a8:3d:1a:aa:54:ee:30:98:c2:4f:14:c2:c0:c9:89:9e:c9: 35:27:6c:ae:65:5c:b7:3d:70:8b:19:09:de:6a:3e:01:a8:87: c1:d0:2a:5e -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIULShGl6oXuApSUgrq85jQm2qD1zUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDZaFw0yNzA1MDIwMjE3NDZaMDMxMTAvBgNV BAMTKDRCQTgwNUUxRDAwOEJFN0U4RUU1RjU5OEY0MUEwMzZDRjIwOUZFQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc9rH+fUVS5CPgsw3+fHVSxGAC 1VdSpQCbnAmPyj+sCh00mjD5zD+VBG13HqI0NFPEYyct+CwSaeFcv2Ywiv0YVA5D w3uK4+IaL7lJmJDXjWArTcBYozsqzK/GxQifbA2/2Fhf3lw0L8rHLmUVCE8d9RQo h72PMkhRfm8WvbIgh3Zg2/3GlXXjaPbT+/LRKliARjwr3jjnAiQc7cSah8mtxB02 XfBY1YE5ySShLaE3ulhiPS3uQUzo/JJjM1eOlAQF3jlhKMo+mXWV6t/2fqJGc7hx qpHpsXIhTJA945UTwFFnPqer5fWF4PFgutIVXxhL/ewVNEm+STubpkw+yF3dAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUS6gF4dAIvn6O5fWY9BoDbPIJ/sMwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAgDANBgkqhkiG9w0BAQsFAAOCAQEAoxvziNdwRX7pQ/xtTEUGUpd21Pepanr1 OB5NbhT4pM28FaoG9y+0C5EDp2q22SbFGqrw4CcppY73VSKb2jH1L5j/U4eTTHT6 WK++FM480lcsrVY4bZAKyj7ADd4x4HTQASKHBgTBdv4arLmwRTm4mH8TrVBdWIUq rShO+yokmJASiMF7FYb3TIJOTgwJDg3+MtbBzW5D3jZ4rKqdCnvceyntujkqLQ5+ jBAANldc5W5uZJgr5exLxXY4FG71PMqvabBdkQItWQfigFGlYJmdo6SKV9ipQkb7 Uqg9GqpU7jCYwk8UwsDJiZ7JNSdsrmVctz1wixkJ3mo+AaiHwdAqXg== -----END CERTIFICATE-----Generated at Wed May 13 12:43:16 2026 by rpki-client